79fd202a4c93952f8918196e4d2d06b3

Sharing

Copy URL Twitter E-mail

General

Target

79fd202a4c93952f8918196e4d2d06b3
Size

343KB
MD5

79fd202a4c93952f8918196e4d2d06b3
SHA1

da62d68fcd9417cc5de7685f4c0032ec6a03aad8
SHA256

99a033749c4cf56eaa1a8f613252ba54b51ce6b159d3840cb737fa784fd72c5b
SHA512

ef3552731f835009e78515991195a9e060d4238db03f82156135ca770311b1b0f1c2c16aa333b0c9d1ba663c490aeb76a097bb596c5f3cfba65640a557da46da
SSDEEP

6144:pp72KRO6NP8h1V7EETh7ESVqrLnGhflQM8V/ZfnghsB:D2WO6Ny77EQJcGdlQpLfnIsB

Score

3^/10

Malware Config

Signatures

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack001/linux/Bin/Control.exe
unpack002/Control.exe
unpack001/linux/Bin/dat/WinDDOS.dat
unpack001/linux/Bin/dat/复件 WinDDOS.dat
unpack001/linux/Bin/生成器.exe
unpack001/linux/Control__/Debug/Control.exe
unpack001/linux/Control__/SkinH.dll

Files

79fd202a4c93952f8918196e4d2d06b3
.rar
linux/Bin/Control.exe
.exe windows:4 windows x86 arch:x86

c29df0e4ad9252227d2bc62a873b714a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord4447
ord4863
ord4975
ord4919
ord5797
ord5479
ord1995
ord967
ord3717
ord523
ord825
ord791
ord4335
ord2915
ord2818
ord800
ord4129
ord6648
ord2764
ord537
ord3500
ord540
ord4673
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord641
ord797
ord693
ord2514
ord1168
ord2621
ord1200
ord1247
ord1134
ord5265
ord4376
ord4853
ord4998
ord6052
ord1775
ord4411
ord4425
ord3597
ord2582
ord4402
ord3370
ord3640
ord2586
ord6055
ord4078
ord1776
ord4405
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3402
ord4627
ord3723
ord1146
ord860
ord567
ord324
ord2301
ord2362
ord2370
ord2302
ord4234
ord6334
ord6907
ord858
ord3301
ord3996
ord3092
ord2118
ord4710
ord2379
ord755
ord470
ord6007
ord3998
ord3286
ord6675
ord4224
ord5953
ord3097
ord6905
ord6888
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord1105
ord5280
ord2642
ord2077
ord823
ord3663
ord2032
ord5482
ord5811
ord4779
ord4407
ord5308
ord1576

msvcrt

?terminate@@YAXXZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_onexit
__dllonexit
_mbscmp
__CxxFrameHandler
strncmp
atoi
_except_handler3
_setmbcp

kernel32

Sleep
CreateThread
GetModuleHandleA
GetStartupInfoA
GetTickCount

user32

DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
GetCursorPos
GetSubMenu
LoadMenuA
SetTimer
EnableWindow
LoadIconA
SendMessageA

ws2_32

socket
htons
WSAStartup
listen
inet_addr
gethostbyname
connect

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 15.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
linux/Bin/Control.zip
.zip
Control.exe
.exe windows:4 windows x86 arch:x86

083ade7c870ba6b6c4edbcf0323a9371

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord4447
ord4863
ord4975
ord4919
ord5797
ord5479
ord1995
ord967
ord3717
ord523
ord825
ord791
ord4335
ord2915
ord2818
ord800
ord4129
ord6648
ord2764
ord537
ord3500
ord540
ord4673
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord641
ord797
ord693
ord2514
ord1168
ord2621
ord1200
ord1247
ord1134
ord2586
ord4405
ord3402
ord3723
ord5265
ord4376
ord4411
ord4998
ord6052
ord1775
ord4407
ord4425
ord3597
ord2582
ord6055
ord4078
ord1776
ord4402
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3370
ord4627
ord3640
ord1146
ord860
ord567
ord324
ord2301
ord2362
ord2370
ord2302
ord4234
ord6334
ord6907
ord858
ord3301
ord3996
ord3092
ord2118
ord4710
ord2379
ord755
ord470
ord6007
ord3998
ord3286
ord6675
ord4224
ord5953
ord3097
ord6905
ord6888
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord1105
ord5280
ord2642
ord2077
ord823
ord3663
ord2032
ord5482
ord5811
ord4779
ord4853
ord5308
ord1576

msvcrt

?terminate@@YAXXZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_onexit
__dllonexit
_mbscmp
__CxxFrameHandler
strncmp
atoi
_except_handler3
_setmbcp

kernel32

Sleep
CreateThread
GetModuleHandleA
GetStartupInfoA
GetTickCount

user32

DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
GetCursorPos
GetSubMenu
LoadMenuA
SetTimer
EnableWindow
LoadIconA
SendMessageA

ws2_32

socket
htons
WSAStartup
listen
inet_addr
gethostbyname
connect

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 15.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
linux/Bin/LinuxDDOS
.elf linux x86
linux/Bin/dat/WinDDOS.dat
.exe windows:4 windows x86 arch:x86

6f30c0a7bca5ce4d6946cb05d6dcce73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
CloseHandle
Sleep
GetModuleHandleA
GetCurrentProcessId
GetTickCount
LoadLibraryA
GetSystemInfo
GetProcAddress
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetFilePointer
GetLastError
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapReAlloc
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringW

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ws2_32

gethostbyname
select
recv
__WSAFDIsSet
WSAIoctl
socket
connect
send
WSAStartup
WSASocketA
WSAGetLastError
setsockopt
htons
htonl
sendto
closesocket
inet_addr

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
linux/Bin/dat/WinDDOS.map
linux/Bin/dat/linux.dat
.elf linux x86
linux/Bin/dat/复件 WinDDOS.dat
.exe windows:4 windows x86 arch:x86

79d9940132dc3fda3dbfcacc8a902470

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
CloseHandle
LoadLibraryA
GetModuleHandleA
GetProcAddress
Sleep
GetCurrentProcessId
GetSystemInfo
GetTickCount
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetFilePointer
GetLastError
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringW

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ws2_32

gethostbyname
select
recv
__WSAFDIsSet
WSAIoctl
socket
connect
send
WSAStartup
WSASocketA
WSAGetLastError
setsockopt
htons
htonl
sendto
closesocket
WSACleanup
inet_addr

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
linux/Bin/生成器.exe
.exe windows:4 windows x86 arch:x86

dc8cadfb2caca7a007d1bd1b4e9fcbfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord825
ord815
ord641
ord800
ord2514
ord2621
ord1134
ord5265
ord4376
ord4998
ord6052
ord4078
ord4486
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5280
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4425
ord3597
ord1146
ord1168
ord860
ord540
ord324
ord2362
ord2370
ord4234
ord4710
ord2379
ord755
ord470
ord665
ord6385
ord4224
ord1979
ord5442
ord3318
ord5186
ord354
ord2915
ord6334
ord6375
ord4274
ord1775
ord4673
ord1576

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
malloc
free
__CxxFrameHandler
_setmbcp
_onexit

kernel32

GetCurrentDirectoryA
GetStartupInfoA
GetModuleHandleA

user32

DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
EnableWindow
LoadIconA
SendMessageA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
linux/Claer.bat
linux/Common.h
linux/Control.dsw
linux/Control__/AcceptSock.cpp
linux/Control__/AcceptSock.h
linux/Control__/ClientSock.cpp
linux/Control__/ClientSock.h
linux/Control__/Control.clw
linux/Control__/Control.cpp
linux/Control__/Control.dsp
linux/Control__/Control.dsw
linux/Control__/Control.h
linux/Control__/Control.plg
.html
linux/Control__/Control.positions
linux/Control__/Control.rc
linux/Control__/ControlDlg.cpp
linux/Control__/ControlDlg.h
linux/Control__/Debug/Control.exe
.exe windows:4 windows x86 arch:x86

d13ef916868707ad0e1c17fe11a95eb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42d

ord3403
ord1788
ord2129
ord487
ord492
ord3803
ord3552
ord5077
ord3702
ord1880
ord1860
ord4415
ord3231
ord1033
ord4130
ord1789
ord2661
ord4227
ord4229
ord2104
ord3366
ord3826
ord4239
ord4215
ord4408
ord2340
ord2481
ord2584
ord3691
ord2473
ord2585
ord2341
ord2432
ord2339
ord3143
ord3144
ord3142
ord2431
ord3367
ord3784
ord3657
ord2021
ord1285
ord2986
ord528
ord706
ord1862
ord1096
ord2052
ord1136
ord574
ord682
ord619
ord4195
ord3629
ord3948
ord4017
ord4753
ord3362
ord1364
ord3651
ord4176
ord1781
ord4118
ord5076
ord3618
ord2078
ord1310
ord3069
ord3944
ord3670
ord2076
ord1566
ord5078
ord880
ord4064
ord1344
ord4191
ord1830
ord1631
ord4205
ord3786
ord3658
ord1952
ord1228
ord2875
ord3432
ord1087
ord736
ord382
ord480
ord317
ord1756
ord1766
ord1772
ord1757
ord1857
ord3524
ord5056
ord4720
ord734
ord2619
ord2593
ord4934
ord2435
ord730
ord719
ord4896
ord3281
ord4589
ord4676
ord3831
ord3960
ord646
ord1906
ord3201
ord5072
ord2324
ord454
ord4475
ord2993
ord413
ord3365
ord4951
ord4705
ord3286
ord4888
ord2597
ord1805
ord2318
ord813
ord3517
ord2640
ord4634
ord4716
ord2438
ord4592
ord632
ord5011
ord422
ord3068
ord3436
ord398
ord4061
ord1043
ord4208
ord1041
ord1190
ord684
ord2168
ord2291
ord728
ord3002
ord4492
ord1100

msvcrtd

atoi
_chkesp
strcpy
strncmp
__dllonexit
memset
__CxxFrameHandler
memcpy
strlen
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
?terminate@@YAXXZ
_except_handler3
_onexit
_setmbcp

kernel32

Sleep
CreateThread
GetModuleHandleA
GetStartupInfoA
GetTickCount

user32

SendMessageA
GetCursorPos
GetSystemMetrics

mfco42d

ord798

ws2_32

gethostbyname
htons
WSAStartup
inet_addr
connect
socket

mfcn42d

ord320
ord280
ord306
ord275
ord294
ord346
ord353
ord337
ord338
ord336
ord334
ord333
ord299
ord350
ord358
ord335
ord343
ord265
ord332
ord316
ord277
ord328
ord301
ord259

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 18.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 352KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
linux/Control__/ReadMe.txt
linux/Control__/SkinH.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

SkinH_AdjustAero
SkinH_AdjustHSV
SkinH_Attach
SkinH_AttachEx
SkinH_AttachExt
SkinH_AttachRes
SkinH_AttachResEx
SkinH_Detach
SkinH_DetachEx
SkinH_GetColor
SkinH_LockUpdate
SkinH_Map
SkinH_NineBlt
SkinH_SetAero
SkinH_SetBackColor
SkinH_SetFont
SkinH_SetFontEx
SkinH_SetForeColor
SkinH_SetMenuAlpha
SkinH_SetTitleMenuBar
SkinH_SetWindowAlpha
SkinH_SetWindowMovable
SkinH_VerifySign

Sections

.Hmily
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.52PoJie
Size: 95KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
linux/Control__/SkinH.h
linux/Control__/SkinH.lib
linux/Control__/StdAfx.cpp
linux/Control__/StdAfx.h
linux/Control__/VMProtectSDK.h
linux/Control__/res/Control.ico
linux/Control__/res/Control.rc2
linux/Control__/res/Control1.ico
linux/Control__/res/china.she
linux/Control__/resource.h
linux/Linux/DDos.h
linux/Linux/Head.h
linux/Linux/LinuxDDos.cbp
.xml
linux/Linux/LinuxDDos.layout
.xml
linux/Linux/a.out
.elf linux x86
linux/Linux/bin/新建文件夹/LinuxDDOS
.elf linux x86
linux/Linux/bin/新建文件夹/linux
.elf linux x86
linux/Linux/cmd.cmd
linux/Linux/main.cpp
linux/Linux/obj/Release/main.o
.elf linux x86
linux/Server/DDos.h
linux/Server/Head.h
linux/Server/ReadMe.txt
linux/Server/Server.cpp
linux/Server/Server.dsp
linux/Server/Server.dsw
linux/Server/Server.plg
.html
linux/Server/Server.positions
linux/Server/StdAfx.cpp
linux/Server/StdAfx.h
linux/Server/TSysWatch.cpp
linux/Server/TSysWatch.h
linux/生成器/ReadMe.txt
linux/生成器/StdAfx.cpp
linux/生成器/StdAfx.h
linux/生成器/Win生成器.dsp
linux/生成器/Win生成器.dsw
linux/生成器/Win生成器.plg
.html
linux/生成器/res/生成器.ico
linux/生成器/res/生成器.rc2
linux/生成器/resource.h
linux/生成器/生成器.clw
linux/生成器/生成器.cpp
linux/生成器/生成器.h
linux/生成器/生成器.plg
.html
linux/生成器/生成器.positions
linux/生成器/生成器.rc
linux/生成器/生成器Dlg.cpp
linux/生成器/生成器Dlg.h

Sharing

General

Malware Config

Signatures

Files

c29df0e4ad9252227d2bc62a873b714a

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

ws2_32

Sections

.text Size: 16KB - Virtual size: 13KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 15.3MB

.rsrc Size: 4KB - Virtual size: 3KB

083ade7c870ba6b6c4edbcf0323a9371

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

ws2_32

Sections

.text Size: 16KB - Virtual size: 13KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 15.3MB

.rsrc Size: 4KB - Virtual size: 3KB

6f30c0a7bca5ce4d6946cb05d6dcce73

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 16KB - Virtual size: 17KB

79d9940132dc3fda3dbfcacc8a902470

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 16KB - Virtual size: 17KB

dc8cadfb2caca7a007d1bd1b4e9fcbfb

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 2KB

d13ef916868707ad0e1c17fe11a95eb5

Headers

File Characteristics

Imports

mfc42d

msvcrtd

kernel32

user32

mfco42d

ws2_32

mfcn42d

Sections

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 15.3MB

.rsrc
Size: 4KB - Virtual size: 3KB

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 15.3MB

.rsrc
Size: 4KB - Virtual size: 3KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 16KB - Virtual size: 17KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 16KB - Virtual size: 17KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 18.3MB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 352KB - Virtual size: 351KB

.reloc
Size: 12KB - Virtual size: 10KB

.Hmily
Size: - Virtual size: 220KB

.52PoJie
Size: 95KB - Virtual size: 111KB